Bug 250231
| Summary: | [WPE][GTK] Sandbox should not allow mounting entire home directory | ||
|---|---|---|---|
| Product: | WebKit | Reporter: | Michael Catanzaro <mcatanzaro> |
| Component: | WebKitGTK | Assignee: | Michael Catanzaro <mcatanzaro> |
| Status: | RESOLVED FIXED | ||
| Severity: | Normal | CC: | bugs-noreply, mcatanzaro |
| Priority: | P2 | ||
| Version: | WebKit Nightly Build | ||
| Hardware: | PC | ||
| OS: | Linux | ||
| See Also: | https://bugs.webkit.org/show_bug.cgi?id=220117 | ||
Michael Catanzaro
Let's split this from bug #220117. We should crash if the application tries to mount / or /home or $HOME in the sandbox. We cannot prevent apps from allowlisting whatever they wish, but if they want to be stupid they should have to try somewhat harder than that.
| Attachments | ||
|---|---|---|
| Add attachment proposed patch, testcase, etc. |
Michael Catanzaro
Pull request: https://github.com/WebKit/WebKit/pull/8330
EWS
Committed 259309@main (4b0c2332b9a6): <https://commits.webkit.org/259309@main>
Reviewed commits have been landed. Closing PR #8330 and removing active labels.